AWS Cloud Engineer (Redshift SSO Integration using OIDC/SAML)

AWS Cloud Engineer (Redshift SSO Integration using OIDC/SAML)

Posted 1 day ago by 1759829368

Apply
Negotiable
Outside
Remote
USA
Apply
Active Directory Amazon Redshift Amazon Web Services (AWS) Application Programming Interface (API) Authentications AWS CLI (Command Line Interface) AWS Identity And Access Management (IAM) Azure Active Directory Business Intelligence Tools Cloud Computing Cloud Engineering Cloud Technology Data Security Enterprise Security Identity And Access Management Management Microsoft Azure OAuth OpenID Ping (Networking Utility) Power BI Role-Based Access Control (RBAC) Security Assertion Markup Language (SAML) Single Sign-On (SSO) Tableau (Business Intelligence Software)

Summary: The AWS Cloud Engineer role focuses on implementing Single Sign-On (SSO) authentication for Amazon Redshift using OIDC/SAML and Active Directory federation. The position requires expertise in AWS Identity and Access Management (IAM) and integration with enterprise identity providers. The ideal candidate will ensure secure access to data platforms while collaborating with security teams to meet compliance standards. This role is remote and classified as outside IR35.

Key Responsibilities:

  • Design, implement, and maintain SSO authentication flows for Amazon Redshift using OIDC/SAML-based federation with Active Directory and enterprise IdPs.
  • Configure and manage IAM roles, trust policies, and STS token-based authentication to enable secure Redshift access.
  • Integrate Redshift with Azure AD/Okta/other IdPs to support role-based access control (RBAC) for business and technical users.
  • Automate Redshift credential management using AWS SDKs, Redshift API (GetClusterCredentials), and token-based authentication.
  • Collaborate with security and compliance teams to ensure solutions meet enterprise security standards (MFA, conditional access, least privilege).
  • Troubleshoot and optimize JDBC/ODBC client connectivity for BI tools (Tableau, Power BI, etc.) using federated authentication.
  • Document authentication flows, policies, and procedures for both technical teams and end users.

Key Skills:

  • Strong hands-on experience with AWS Redshift (provisioned or serverless) and IAM authentication.
  • Expertise in SSO protocols: SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
  • Experience federating Active Directory / Azure AD / Okta / Ping Identity with AWS IAM for application authentication.
  • Familiarity with AWS STS, IAM Roles, and trust policies for cross-service authentication.
  • Experience integrating Redshift with BI/reporting tools (e.g., Tableau, Power BI) using token-based authentication.
  • Proficiency with AWS CLI / SDKs / API for managing temporary credentials.
  • Strong understanding of identity governance, RBAC, and data security best practices.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Job Description AWS Cloud Engineer (Redshift SSO Integration using OIDC/SAML)

Location: Boston, MA

Overview

We are seeking a skilled Cloud Engineer / Identity & Access Specialist with hands-on experience implementing Single Sign-On (SSO) authentication for Amazon Redshift using Active Directory (AD) federation with OIDC/SAML. The ideal candidate will have a strong background in AWS Identity and Access Management (IAM), enterprise IdPs (Azure AD, Okta, Ping, etc.), and secure integration of data platforms into corporate identity ecosystems.

Key Responsibilities

  • Design, implement, and maintain SSO authentication flows for Amazon Redshift using OIDC/SAML-based federation with Active Directory and enterprise IdPs.
  • Configure and manage IAM roles, trust policies, and STS token-based authentication to enable secure Redshift access.
  • Integrate Redshift with Azure AD/Okta/other IdPs to support role-based access control (RBAC) for business and technical users.
  • Automate Redshift credential management using AWS SDKs, Redshift API (GetClusterCredentials), and token-based authentication.
  • Collaborate with security and compliance teams to ensure solutions meet enterprise security standards (MFA, conditional access, least privilege).
  • Troubleshoot and optimize JDBC/ODBC client connectivity for BI tools (Tableau, Power BI, etc.) using federated authentication.
  • Document authentication flows, policies, and procedures for both technical teams and end users.

Required Skills & Experience

  • Strong hands-on experience with AWS Redshift (provisioned or serverless) and IAM authentication.
  • Expertise in SSO protocols: SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
  • Experience federating Active Directory / Azure AD / Okta / Ping Identity with AWS IAM for application authentication.
  • Familiarity with AWS STS, IAM Roles, and trust policies for cross-service authentication.
  • Experience integrating Redshift with BI/reporting tools (e.g., Tableau, Power BI) using token-based authentication.
  • Proficiency with AWS CLI / SDKs / API for managing temporary credentials.
  • Strong understanding of identity governance, RBAC, and data security best practices.
Apply
Similar Jobs
Loading data...